Location: Columbia, MD
Category: Systems
Job ID: CIS0001XK
Your Impact:
We are seeking a Senior Information Systems Security Officer (ISSE). This is a Hybrid position and supports our prime customer in Columbia, Maryland.
Description:
The Senior Information Systems Security Engineer will perform, or review:
- Technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations and recommend mitigation strategies.
- Validates and verifies system security requirements definitions and analysis and establishes system security designs.
- Designs, develops, implements and/or integrates IA and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements.
- Builds IA into systems deployed to operational environments.
- Assists architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions.
- Supports the building of security architectures.
- Enforce the design and implementation of trusted relations among external systems and architectures.
- Assesses and mitigates system security threats/risks throughout the program life cycle.
- Contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations.
- Reviews certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its content.
#Divergent
Here’s what you’ll need:
- TS/SCI w/Poly Security Clearance.
- 14 years of IA System Architect and Engineer (IASAE) experience, to include recent experience within the last 5 years, with Defense-in-Depth principles and technology, including access/control, authorization, identification and authentication, Public Key Infrastructure (PKI), network and enterprise security architecture.
- 2 years of experience applying security risks assessment methodology to system development, including threat model development, vulnerability assessments, and resulting security risk analysis.
- A Bachelor’s Degree in Computer Science or IT Engineering may be substituted for 4 years of experience.
- Master’s Degree in Computer Science or IT Engineering is desired and may be substituted for 6 years of experience.
- Knowledge of Federal, NS A, IC, and DOD Information Security regulations, publications, and policy.
- This is a CWIP Billet per DOD Directive 8570-1 and must meet specified certification requirements defined and documented by the TTO COR. IASAE Level III (CISSP-ISSAP or CISSP-ISSEP) Certification.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.